Re: About War Driving ..



WEP is so trivial to break, that there'd be no point on keeping on rotating your WEP key. To answer your question in short first:

No, it's almost impossible to locate a user on your WLAN. Best you could do is counter-intrude and try to find out who he is, but that could be illegal in your jurisdiction.

There are several solutions, some more effective than others.

1) Filter his MAC address, or whitelist the MAC addresses you know are good.

2) Put a default deny rule on all outgoing traffic and introduce a proxy server with authentication on it.

3) Make your WLAN a DMZ which requires strong authentication to access either intranet or Internet resources.

I consider the last options the best one; I imagine that since he's in your WLAN, he's probably compromised other hosts to leave himself a backdoor in, for when his access is revoked again. If WLAN users were in the DMZ, the damage he could do would be limited.

Good luck stopping it.



Relevant Pages

  • [PATCH] dynamic wep keys for airo.c
    ... enable dynamic wep keying without disabling the MAC. ... There is a special IW_ENCODE_TEMP flag for selecting ... disabling the MAC even if a permanent WEP key is set. ...
    (Linux-Kernel)
  • Verizon FIOS (and DSL?) wireless access point insecure default WEP key
    ... the 40-bit WEP key for the wireless router provided by ... Verizon to FiOS and possibly DSL customers is set to the ... because the router's MAC address (the MAC address of it's WAN-side ... ethernet port) is easily discoverable using kismet without even ...
    (Bugtraq)
  • Re: [PATCH] dynamic wep keys for airo.c
    ... The current airo.c driver always disables the MAC before ... setting the WEP key whether it is temporary or permanent. ... When the MAC is disabled the card disassociates causing the ... >> disabling the MAC even if a permanent WEP key is set. ...
    (Linux-Kernel)
  • Re: Cant associate wlan card with WPA enabled access-point.
    ... Yes but WEP encryption is not authentication I think. ... > but when i type iwconfig eth2 i always see the following: ... iwconfig eth2 key < your wep key> ... > access-point, ...
    (comp.os.linux.networking)
  • Re: My Dell laptop has arrived
    ... I use a network password. ... but there should be a WEP key in use as well for all ... BUt how does my Mac communicate with it and why is it different? ... I assumed that PC laptops would be similar and that Edwins rantings were just ...
    (comp.sys.mac.advocacy)